Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228441	7.5	危険	XOOPS	-	XOOPS 用の wfquotes モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-2571	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228442	7.5	危険	practical creative and code	-	Friendly における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2569	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228443	9.3	危険	vcdgear	-	VCDGear におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2568	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

228444	9.3	危険	taltech	-	Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-2567	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228445	5	警告	taltech	-	Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2566	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228446	10	危険	sienzo	-	Sienzo DMM ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2564	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228447	9.3	危険	versalsoft	-	VersalSoft HTTP File Upload ActiveX コントロールの AddFile 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-2563	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228448	4.3	警告	podium cms	-	Podium CMS の Default.aspx におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-2555	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228449	5	警告	Wikka Development Team	-	WikkaWiki の RecentChanges 機能における非公開ページの名前などを取得される脆弱性	CWE-200 情報漏えい	CVE-2007-2552	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228450	4.3	警告	Wikka Development Team	-	WikkaWiki の usersettings.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2551	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222851	7.8	HIGH Local	qualcomm	apq8098_firmware ipq6018_firmware ipq8074_firmware msm8998_firmware nicobar_firmware qca8081_firmware qcn7605_firmware qcs404_firmware qcs605_firmware rennell_firmware s…	Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon C…	CWE-120 Classic Buffer Overflow	CVE-2019-14027	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

222852	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9206_firmware mdm9207c_firmware…	Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connec…	CWE-120 Classic Buffer Overflow	CVE-2019-14026	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

222853	7.8	HIGH Local	qualcomm	apq8096_firmware apq8096au_firmware mdm9205_firmware msm8996_firmware msm8996au_firmware nicobar_firmware qcs404_firmware qcs405_firmware qcs605_firmware rennell_firmware	A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Con…	CWE-787 Out-of-bounds Write	CVE-2019-14015	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

222854	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9150_firmware mdm9205_firmware<…	Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Comp…	CWE-787 Out-of-bounds Write	CVE-2019-14000	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

222855	7.5	HIGH Network	combodo	itop	iTop 2.2.0 through 2.6.0 allows remote attackers to cause a denial of service (application outage) via many requests to launch a compile operation. The requests use the pages/exec.php?exec_env=produc…	NVD-CWE-noinfo	CVE-2019-13967	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

222856	6.1	MEDIUM Network	combodo	itop	In iTop through 2.6.0, an XSS payload can be delivered in certain fields (such as icon) of the XML file used to build the dashboard. This is similar to CVE-2015-6544 (which is only about the dashboar…	CWE-79 Cross-site Scripting	CVE-2019-13966	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

222857	6.1	MEDIUM Network	combodo	itop	Because of a lack of sanitization around error messages, multiple Reflective XSS issues exist in iTop through 2.6.0 via the param_file parameter to webservices/export.php, webservices/cron.php, or en…	CWE-79 Cross-site Scripting	CVE-2019-13965	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

222858	7.5	HIGH Network	siemens	profinet_driver dk_standard_ethernet_controller simatic_ipc_support ek-ertec_200_firmware ek-ertec_200p_firmware ruggedcom_rm1224_firmware scalance_m-800_firmware scalance_s615_f…	Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could le…	-	CVE-2019-13946	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

222859	7.5	HIGH Network	siemens	ozw672_firmware ozw772_firmware	A vulnerability has been identified in OZW672 (All versions < V10.00), OZW772 (All versions < V10.00). Vulnerable versions of OZW Web Server use predictable path names for project files that legitima…	CWE-552 Files or Directories Accessible to External Parties	CVE-2019-13941	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

222860	7.5	HIGH Network	siemens	s7-1200_cpu_1211c_firmware s7-1200_cpu_1212c_firmware s7-1200_cpu_1214c_firmware s7-1200_cpu_1215c_firmware s7-1200_cpu_1217c_firmware s7-1200_cpu_1212fc_firmware s7-1200_cpu_1214fc…	A vulnerability has been identified in SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8FX PN/DP C…	-	CVE-2019-13940	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed